Cisco Firepower extractors

dscryber · March 15, 2022, 11:14pm

Graylog GROK extractors for Cisco Firepower Intrusion events and Access Control log (simple syslog, not estreamer)

firepower-access_control-extractor.json - Access Control log

firepower-intrusion-extractor.json - Intrusion events log

firepower-extractor.json - both Intrusion events and Access Control logs

Topic		Replies	Views
Need help with extractor grok pattern Graylog Tech Challenges pipeline-rules	6	1376	May 24, 2022
Cisco ASA Extractors for Graylog Other Solutions other_solutions	0	1463	March 15, 2022
Symantec Endpoint Protection extractors Graylog Add-ons	2	2017	July 19, 2017
Cisco ASA Extractors Other Solutions other_solutions	0	1602	March 15, 2022
Cisco FTD message extractor Graylog Central (peer support) pipeline-rules , cisco	11	34	September 26, 2024